valid_token_issuers incorrectly populated during SingleTenant validation

microsoft / botbuilder-python

The Microsoft Bot Framework provides what you need to build and connect intelligent bots that interact naturally wherever your users are talking, from text/sms to Skype, Slack, Office 365 mail and other popular services.

http://botframework.com

MIT License

672 stars 271 forks source link

valid_token_issuers incorrectly populated during SingleTenant validation #2116

Closed harvey-k closed 1 month ago

harvey-k commented 1 month ago

Github issues should be used for bugs and feature requests. Use Stack Overflow for general "how-to" questions.

Version

4.15.0

Describe the bug

Tenant specific token issuers (valid_token_issuers) are added as a nested element, instead of individual issuers.

To Reproduce

Steps to reproduce the behavior: Authenticating with app_type 'SingleTenant' will result in unauthorized requests.

Expected behavior

Tenant specific token issues are treated as valid.